Unrated severityNVD Advisory· Published Mar 11, 2020· Updated Sep 17, 2024
PAN-OS: A format string vulnerability in PAN-OS log daemon (logd) on Panorama allows local privilege escalation
CVE-2020-1979
Description
A format string vulnerability in the PAN-OS log daemon (logd) on Panorama allows a network based attacker with knowledge of registered firewall devices and access to Panorama management interfaces to execute arbitrary code, bypassing the restricted shell and escalating privileges. This issue affects only PAN-OS 8.1 versions earlier than PAN-OS 8.1.13 on Panorama. This issue does not affect PAN-OS 7.1, PAN-OS 9.0, or later PAN-OS versions.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<8.1.13+ 1 more
- (no CPE)range: <8.1.13
- (no CPE)range: 8.1
Patches
Vulnerability mechanics
References
1- security.paloaltonetworks.com/CVE-2020-1979mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.